CVE-2020-9057

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 10-01-2022 03:10

Last modified: - 18-01-2022 06:10

Total changes: - 2

Description

Z-Wave devices based on Silicon Labs 100, 200, and 300 series chipsets do not support encryption, allowing an attacker within radio range to take control of or cause a denial of service to a vulnerable device. An attacker can also capture and replay Z-Wave traffic. Firmware upgrades cannot directly address this vulnerability as it is an issue with the Z-Wave specification for these legacy chipsets. One way to protect against this vulnerability is to use 500 or 700 series chipsets that support Security 2 (S2) encryption. As examples, the Linear WADWAZ-1 version 3.43 and WAPIRZ-1 version 3.43 (with 300 series chipsets) are vulnerable.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Low

Attack complexity

Adjacent

Attack vector

High

Availability

High

Confidentiality

High

Integrity

None

Privileges required

Unchanged

Scope

None

User interaction

8.8

Base score

2.8

5.9

Exploitability score

Impact score

Verification logic

vendor=linear AND product=wadwaz-1 AND version=3.43

vendor=linear AND product=wapirz-1 AND version=3.43

vendor=silabs AND product=100_series_firmware

vendor=silabs AND product=200_series_firmware

vendor=silabs AND product=300_series_firmware

Reference

https://github.com/CNK2100/VFuzz-public
https://kb.cert.org/vuls/id/142629
https://ieeexplore.ieee.org/document/9663293
https://doi.org/10.1109/ACCESS.2021.3138768
VU#142629-Third Party Advisory, US Government Resource

Keywords

CVE-2020-9057

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2020-9057

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures